I am a systems administrator at a residence for about a thousand people, where I live myself as well...

>Control on what sides he is very often and block only those.
>Kick him out of his net from time to time.
>jam his printer

This is a good idea, actually.

My biggest problem is that I have two coworkers, and I don't think they'd be very keen on finding out about this...

if you have access to his social media, the least you could do is delete his contacts

I am capable of monitoring unencrypted network traffic as well as DNS lookups...

Here's an excerpt of a HTTP request. So he likes to play steam games it seems. Maybe you guys know of some interesting protocols I should look into?

...
User-Agent: Valve/Steam HTTP Client 1.0 (client;windows;14;1513371197)
If-Modified-Since: Fri, 15 Dec 2017 17:26:58
Host: client-download.steampowered.com
Accept: text/html,*/*;q=0.9
Accept-Encoding: gzip,identity,*;q=0
Accept-Charset: ISO-8859-1,utf-8,*;q=0.7

not sure this is the right board for such a question...

you could just block the steam site, right?

What kind of draconian shithole dictatorship
do you live in where 1000 people have no choice but to use your stinking firewall? You sound like
a middle class street shitter who thinks his shit don't stink because he has a loo now.

You could stop being a beta pussy and punch him in the fucking face like a man.

I don't think you know how networks work or what a firewall is...

Yes I would love to do that.

Should I go to a tech board?

Block access to porn

find whatever social media and email sites he uses
make them redirect to phishing sites you set up
collect his passwords
changed his email password, then go on his social media pages and post fucked up but believable stuff

this, if you really, really hate that guy :^)

Got my own fucking connection and my own fucking firewall. Answer the question street shitter.

This is actually a really good idea. I actually control which IPs are allocated to what devices at what times. I could easily forge such a record, but I guess he would be screwed over big time, like life-ruined, which might be a little over-the-top.

Do you know what a hardware firewall is, retard? A DHCP server? You need those to run a network, unless you're a complete and utter idiot.

Just press charges for slander.

If you can maybe download a virus, perferably one to plant hints about child porn and maybe get the police involved. Or just fuck with his computer

My bitch love do cocaine OUU

Block steam for his ip, or just his favorite game. In your router settings you can block ports per ip through a filter.

The problem is that I don't have access to his computer, just the network. If an application does auto-updates from insecure servers, I could probably spoof the DNS and make it execute a program of my choice. Such a program could provide me with full control. I do not have a lot of knowledge about such attack vectors, and I hoped some people here might.

I'm not sure how this would work. If you have a firewall that OP suggested then I assume it is all an internal network. Any requests to the world would be from the same IP right? Internally you could track a privately controlled IP of course but that wouldn't be the one that requested to the world, right?

He's watching the pr0n now, but i can't really do anything about it. Shit's encrypted. Perhaps I'll make a script that interrupts his internet 5 minutes into jacking off???

Host: pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Firebomb his house. Fuck that gay IT shit, you've been slighted and you need to take real action.

Not him but I am curious as well. Why does everything in this residence run through an internal network?

Well what kind of lies and trash talk are we talking about here?

set ACL's for only his steam but nothing otherwise, it'll piss him off only being able to play games, also block port 80 (for in steam browser) what hardware is the building running?

You could also set an exernal DNS service, occasionally redirect any requests (or specific DNS requests) to sites completely the opposite.

Straight - Gay
Anal - Vaginal
etc.

It's how it works? Same thing when I lived at student residences, all our internet was piped over two external links. On-site firewall and transparent proxy.

You got the idea you asked for, now you're gonna puss out?
>typical Sup Forumstard faggot

Interesting. I've never lived at a place that forced a shared network or offered one for that matter. So this is a college thing? I've never lived at an apartment with a shared network. I'm still skeptical of OP's claims. And as
Pointed out it would have to be his own internal log which seems untrustworthy since there is a sysadmin who can man in the middle all traffic. I assume the user needs to install a root cert in order for this to work? Or a fairly complicated system to spoof it.

what all retards here suggest is stupid for one simple reason - you'll be making him right if you do that. Fuck with him this way and he'll the whole right to claim that his lies are in fact true.
And you'll be the first one blamed if something bad happens to him internet-wise.

so instead think of some way to incriminate him in the eyes of the residence citizens. They will give him some really bad time in turn.